Lucene search
K
CvelistMost viewed

365179 matches found

Cvelist
Cvelist
added 2024/01/03 4:59 p.m.63 views

CVE-2024-21633 Arbitrary file write on Decoding

Apktool is a tool for reverse engineering Android APK files. In versions 2.9.1 and prior, Apktool infers resource files' output path according to their resource names which can be manipulated by attacker to place files at desired location on the system Apktool runs on. Affected environments are...

7.8CVSS7.7AI score0.0132EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/11/28 7:5 a.m.63 views

CVE-2023-3368 Chamilo LMS Unauthenticated Command Injection

Command injection in /main/webservices/additionalwebservices.php in Chamilo LMS = v1.11.20 allows unauthenticated attackers to obtain remote code execution via improper neutralisation of special characters. This is a bypass of CVE-2023-34960...

9.8CVSS10AI score0.68897EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/10/19 11:35 p.m.63 views

CVE-2023-46115 Updater Private Keys Possibly Leaked via Vite Environment Variables in tauri-cli

Tauri is a framework for building binaries for all major desktop platforms. This advisory is not describing a vulnerability in the Tauri code base itself but a commonly used misconfiguration which could lead to leaking of the private key and updater key password into bundled Tauri applications...

8.4CVSS8.7AI score0.00192EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/09/13 1:19 p.m.63 views

CVE-2023-3935 Wibu: Buffer Overflow in CodeMeter Runtime

A heap buffer overflow vulnerability in Wibu CodeMeter Runtime network service up to version 7.60b allows an unauthenticated, remote attacker to achieve RCE and gain full access of the host system...

9.8CVSS10AI score0.01505EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/08/09 4:9 p.m.63 views

CVE-2023-39531 Sentry vulnerable to incorrect credential validation on OAuth token requests

Sentry is an error tracking and performance monitoring platform. Starting in version 10.0.0 and prior to version 23.7.2, an attacker with sufficient client-side exploits could retrieve a valid access token for another user during the OAuth token exchange due to incorrect credential validation. Th...

6.5CVSS6.7AI score0.00308EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/08 10:29 a.m.63 views

CVE-2023-4203 Stored Cross-Site Scripting

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the web-interface...

9CVSS8.1AI score0.00868EPSS
Exploits2References3
Cvelist
Cvelist
added 2023/07/24 3:19 p.m.63 views

CVE-2023-3640 Kernel: x86/mm: a per-cpu entry area leak was identified through the init_cea_offsets function when prefetchnta and prefetcht2 instructions being used for the per-cpu entry area mapping to the user space

A possible unauthorized memory access flaw was found in the Linux kernel's cpuentryarea mapping of X86 CPU data to memory, where a user may guess the location of exception stacks or other important data. Based on the previous CVE-2023-0597, the 'Randomize per-cpu entry area' feature was implement...

7CVSS6.8AI score0.00719EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/07/14 9:9 p.m.63 views

CVE-2023-34236 Information Disclosure Vulnerability in Weave GitOps Terraform Controller

Weave GitOps Terraform Controller aka Weave TF-controller is a controller for Flux to reconcile Terraform resources in a GitOps way. A vulnerability has been identified in Weave GitOps Terraform Controller which could allow an authenticated remote attacker to view sensitive information. This...

8.5CVSS8.7AI score0.00706EPSS
Exploits1References7
Cvelist
Cvelist
added 2023/06/16 4:4 p.m.63 views

CVE-2023-30625 rudder-server vulnerable to SQL Injection

rudder-server is part of RudderStack, an open source Customer Data Platform CDP. Versions of rudder-server prior to 1.3.0-rc.1 are vulnerable to SQL injection. This issue may lead to Remote Code Execution RCE due to the rudder role in PostgresSQL having superuser permissions by default. Version...

8.8CVSS9.5AI score0.85825EPSS
Exploits4References8
Cvelist
Cvelist
added 2023/06/16 7:8 a.m.63 views

CVE-2023-2431 Bypass of seccomp profile enforcement

A security issue was discovered in Kubelet that allows pods to bypass the seccomp profile enforcement. Pods that use localhost type for seccomp profile but specify an empty profile field, are affected by this issue. In this scenario, this vulnerability allows the pod to run in unconfined seccomp...

3.4CVSS5.9AI score0.00257EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/06/01 12:56 p.m.63 views

CVE-2022-43760

An Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in SUSE Rancher allows users in some higher-privileged groups to to inject code that is executed within another user's browser, allowing the attacker to steal sensitive information, manipulate web...

8.4CVSS8.5AI score0.00714EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/01 12:52 p.m.63 views

CVE-2023-22647

An Improper Privilege Management vulnerability in SUSE Rancher allowed standard users to leverage their existing permissions to manipulate Kubernetes secrets in the local cluster, resulting in the secret being deleted, but their read-level permissions to the secret being preserved. When this...

9.9CVSS9.3AI score0.00715EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/12 1:18 p.m.63 views

CVE-2023-1934

The PnPSCADA system, a product of SDG Technologies CC, is afflicted by a critical unauthenticated error-based PostgreSQL Injection vulnerability. Present within the hitlogcsv.jsp endpoint, this security flaw permits unauthenticated attackers to engage with the underlying database seamlessly and...

9.8CVSS9.9AI score0.08079EPSS
Exploits3References2
Cvelist
Cvelist
added 2023/04/19 5:25 p.m.63 views

CVE-2023-30612 Malicious HTTP requests could close arbitrary opening file descriptors in cloud-hypervisor

Cloud hypervisor is a Virtual Machine Monitor for Cloud workloads. This vulnerability allows users to close arbitrary open file descriptors in the Cloud Hypervisor process via sending malicious HTTP request through the HTTP API socket. As a result, the Cloud Hypervisor process can be easily...

4CVSS5.4AI score0.0036EPSS
Exploits0References5
Cvelist
Cvelist
added 2023/04/10 1:17 p.m.63 views

CVE-2023-0983 Stylish Cost Calculator Premium < 7.9.0 - Unauthenticated Stored XSS

The stylish-cost-calculator-premium WordPress plugin before 7.9.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Stored Cross-Site Scripting which could be used against admins when viewing submissions submitted through the Email Quote Form...

6.1AI score0.00458EPSS
Exploits2References1
Cvelist
Cvelist
added 2023/04/05 6:0 p.m.63 views

CVE-2022-4940 WCFM Membership <= 2.10.0 - Missing Authorization

The WCFM Membership plugin for WordPress is vulnerable to unauthorized modification and access of data in versions up to, and including, 2.10.0 due to missing capability checks on various AJAX actions. This makes it possible for unauthenticated attackers to perform a wide variety of actions such ...

7.3CVSS7.2AI score0.01084EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/03/29 12:0 a.m.63 views

CVE-2022-36970

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge 20.0 Build: 4201.2111.1802.0000 Service Pack 2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...

7.8CVSS8AI score0.00647EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/02/26 12:20 p.m.64 views

CVE-2023-1046 MuYuCMS getFile.html server-side request forgery

A vulnerability classified as critical has been found in MuYuCMS 2.2. This affects an unknown part of the file /admin.php/update/getFile.html. The manipulation of the argument url leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed ...

6.5CVSS9AI score0.00601EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/02/21 9:0 p.m.63 views

CVE-2023-25157 Unfiltered SQL Injection Vulnerabilities in Geoserver

GeoServer is an open source software server written in Java that allows users to share and edit geospatial data. GeoServer includes support for the OGC Filter expression language and the OGC Common Query Language CQL as part of the Web Feature Service WFS and Web Map Service WMS protocols. CQL is...

9.8CVSS9.6AI score0.85247EPSS
Exploits3References2
Cvelist
Cvelist
added 2023/02/20 3:22 p.m.63 views

CVE-2023-25570 Apollo has potential access control security issue in eureka

Apollo is a configuration management system. Prior to version 2.1.0, there are potential security issues if users expose apollo-configservice to the internet, which is not recommended. This is because there is no authentication feature enabled for the built-in eureka service. Malicious hackers ma...

7.5CVSS7.9AI score0.00823EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/02/14 7:32 p.m.63 views

CVE-2023-21704 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability

...

7.8CVSS8AI score0.00393EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/09 6:58 a.m.63 views

CVE-2022-25734 Loop with Unreachable Exit Condition in MODEM

Denial of service in modem due to missing null check while processing IP packets with padding...

7.5CVSS7.7AI score0.00406EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/01 6:0 p.m.63 views

CVE-2023-22501

An authentication vulnerability was discovered in Jira Service Management Server and Data Center which allows an attacker to impersonate another user and gain access to a Jira Service Management instance under certain circumstances. With write access to a User Directory and outgoing email enabled...

9.4CVSS9.6AI score0.15978EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/11 4:58 p.m.63 views

CVE-2022-3782

keycloak: path traversal via double URL encoding. A flaw was found in Keycloak, where it does not properly validate URLs included in a redirect. An attacker can use this flaw to construct a malicious request to bypass validation and access other URLs and potentially sensitive information within t...

9.3AI score0.05796EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/12/28 8:45 p.m.63 views

CVE-2022-4821 FlatPress XML File Handler/MD File admin.uploader.php onupload cross site scripting

A vulnerability classified as problematic was found in FlatPress. This vulnerability affects the function onupload of the file admin/panels/uploader/admin.uploader.php of the component XML File Handler/MD File Handler. The manipulation leads to cross site scripting. The attack can be initiated...

2.4CVSS6.5AI score0.00512EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/11/21 12:0 a.m.63 views

CVE-2022-3388 Input Validation Vulnerability in Hitachi Energy’s MicroSCADA Pro/X SYS600 Products

An input validation vulnerability exists in the Monitor Pro interface of MicroSCADA Pro and MicroSCADA X SYS600. An authenticated user can launch an administrator level remote code execution irrespective of the authenticated user's role...

8.8CVSS9.1AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/08 12:0 a.m.63 views

CVE-2022-39386 fastify-websocket vulnerable to uncaught exception via crash on malformed packet

@fastify/websocket provides WebSocket support for Fastify. Any application using @fastify/websocket could crash if a specific, malformed packet is sent. All versions of fastify-websocket are also impacted. That module is deprecated, so it will not be patched. This has been patched in version 7.1....

7.5CVSS7.7AI score0.00731EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/02/18 10:15 p.m.63 views

CVE-2022-23642 Code Injection in Sourcegraph

Sourcegraph is a code search and navigation engine. Sourcegraph prior to version 3.37 is vulnerable to remote code execution in the gitserver service. The service acts as a git exec proxy, and fails to properly restrict calling git config. This allows an attacker to set the git core.sshCommand...

8.8CVSS9.1AI score0.7431EPSS
Exploits8References4
Cvelist
Cvelist
added 2022/02/18 7:51 p.m.63 views

CVE-2022-24050

MariaDB CONNECT Storage Engine Use-After-Free Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of SQL...

7CVSS8.3AI score0.00644EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/02/18 7:51 p.m.63 views

CVE-2022-24048

MariaDB CONNECT Storage Engine Stack-based Buffer Overflow Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of MariaDB. Authentication is required to exploit this vulnerability. The specific flaw exists within the...

7CVSS8.3AI score0.00689EPSS
Exploits0References6
Cvelist
Cvelist
added 2022/02/09 1:10 p.m.63 views

CVE-2021-46354

Thinfinity VirtualUI 2.1.28.0, 2.1.32.1 and 2.5.26.2, fixed in version 3.0 is affected by an information disclosure vulnerability in the parameter "Addr" in cmd site. The ability to send requests to other systems can allow the vulnerable server to filtrate the real IP of the web server or increas...

7.5AI score0.12785EPSS
Exploits3References2
Cvelist
Cvelist
added 2022/01/29 10:34 p.m.63 views

CVE-2021-46659

MariaDB before 10.7.2 allows an application crash because it does not recognize that SELECTLEX::nestlevel is local to each VIEW...

6.7AI score0.00551EPSS
Exploits1References6
Cvelist
Cvelist
added 2021/12/13 10:41 a.m.63 views

CVE-2021-24946 Modern Events Calendar < 6.1.5 - Unauthenticated Blind SQL Injection

The Modern Events Calendar Lite WordPress plugin before 6.1.5 does not sanitise and escape the time parameter before using it in a SQL statement in the mecloadsinglepage AJAX action, available to unauthenticated users, leading to an unauthenticated SQL injection issue...

10AI score0.728EPSS
Exploits7References3
Cvelist
Cvelist
added 2021/11/05 7:55 p.m.63 views

CVE-2021-41197 Crashes due to overflow and `CHECK`-fail in ops with large tensor shapes

TensorFlow is an open source platform for machine learning. In affected versions TensorFlow allows tensor to have a large number of dimensions and each dimension can be as large as desired. However, the total number of elements in a tensor must fit within an int64t. If an overflow occurs,...

5.5CVSS5AI score0.00307EPSS
Exploits1References6
Cvelist
Cvelist
added 2021/08/12 6:11 p.m.63 views

CVE-2021-34478 Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.8AI score0.54383EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/08/08 5:9 a.m.63 views

CVE-2021-38193

An issue was discovered in the ammonia crate before 3.1.0 for Rust. XSS can occur because the parsing differences for HTML, SVG, and MathML are mishandled, a similar issue to CVE-2020-26870...

6.4AI score0.00702EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/03/11 3:47 p.m.63 views

CVE-2021-27080 Azure Sphere Unsigned Code Execution Vulnerability

...

9.3CVSS9.5AI score0.01216EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/03/04 12:30 p.m.63 views

CVE-2020-24912

A reflected cross-site scripting XSS vulnerability in qcubed all versions including 3.1.1 in profile.php via the stQuery-parameter allows unauthenticated attackers to steal sessions of authenticated users...

5.9AI score0.06289EPSS
Exploits3References4
Cvelist
Cvelist
added 2021/02/26 2:15 a.m.63 views

CVE-2021-21330 Open redirect vulnerability in aiohttp

aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In aiohttp before version 3.7.4 there is an open redirect vulnerability. A maliciously crafted link to an aiohttp-based web-server could redirect the browser to a different website. It is caused by a bug in the...

3.1CVSS6.5AI score0.01905EPSS
Exploits0References8
Cvelist
Cvelist
added 2021/02/25 4:25 p.m.63 views

CVE-2021-20327 MongoDB Node.js client side field level encryption library may not be validating KMS certificate

A specific version of the Node.js mongodb-client-encryption module does not perform correct validation of the KMS server’s certificate. This vulnerability in combination with a privileged network position active MITM attack could result in interception of traffic between the Node.js driver and th...

6.4CVSS6.7AI score0.00204EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/12/31 8:20 a.m.63 views

CVE-2020-35910

An issue was discovered in the lockapi crate before 0.4.2 for Rust. A data race can occur because of MappedMutexGuard unsoundness...

5.4AI score0.00324EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/10/16 1:2 p.m.63 views

CVE-2020-14144

The git hook feature in Gitea 1.1.0 through 1.12.5 might allow for authenticated remote code execution in customer environments where the documentation was not understood e.g., one viewpoint is that the dangerousness of this feature should be documented immediately above the ENABLEGITHOOKS line i...

7.3AI score0.95432EPSS
Exploits12References8
Cvelist
Cvelist
added 2020/08/16 3:31 a.m.63 views

CVE-2020-24361

SNMPTT before 1.4.2 allows attackers to execute shell code via EXEC, PREXEC, or unknowntrapexec...

9.6AI score0.02016EPSS
Exploits0References3
Cvelist
Cvelist
added 2020/07/29 4:25 p.m.63 views

CVE-2020-11934 Sandbox escape vulnerability via snapctl user-open (xdg-open)

It was discovered that snapctl user-open allowed altering the $XDGDATADIRS environment variable when calling the system xdg-open. OpenURL in usersession/userd/launcher.go would alter $XDGDATADIRS to append a path to a directory controlled by the calling snap. A malicious snap could exploit this t...

5.9CVSS6.3AI score0.00365EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/05/07 11:52 p.m.63 views

CVE-2020-12720

vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control...

9.6AI score0.88948EPSS
Exploits13References4
Cvelist
Cvelist
added 2020/03/22 3:48 a.m.63 views

CVE-2020-10802

In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Table/TableSearchController.php. An attacker can generate a...

8AI score0.02115EPSS
Exploits0References8
Cvelist
Cvelist
added 2020/03/19 5:56 p.m.63 views

CVE-2019-20525

Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp driver parameter...

6AI score0.00906EPSS
Exploits1References1
Cvelist
Cvelist
added 2019/12/17 7:2 p.m.64 views

CVE-2019-19241

In the Linux kernel before 5.4.2, the iouring feature leads to requests that inadvertently have UID 0 and full capabilities, aka CID-181e448d8709. This is related to fs/io-wq.c, fs/iouring.c, and net/socket.c. For example, an attacker can bypass intended restrictions on adding an IPv4 address to...

7.3AI score0.01087EPSS
Exploits2References6
Cvelist
Cvelist
added 2019/10/02 1:58 p.m.63 views

CVE-2019-17091

faces/context/PartialViewContextImpl.java in Eclipse Mojarra, as used in Mojarra for Eclipse EE4J before 2.3.10 and Mojarra JavaServer Faces before 2.2.20, allows Reflected XSS because a client window field is mishandled...

7.4AI score0.02469EPSS
Exploits1References17
Cvelist
Cvelist
added 2018/03/13 5:0 p.m.63 views

CVE-2017-1002101

In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type including non-privileged pods, subject to file permissions can access files/directories outside of the volume, including the host's filesyste...

8.8CVSS8.6AI score0.11586EPSS
Exploits2References4
Total number of security vulnerabilities5000